This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AppSec Washington 2005/Agenda"
From OWASP
(164 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
+ | == OWASP DC 2005 Conference Schedule == | ||
+ | |||
+ | |||
+ | {| style="width:80%" border="0" align="center" | ||
+ | | colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 1 - October 11, 2005''' | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | || style="width:40%; background:#BC857A" align="center" | Track 1: Red Auditorium | ||
+ | | style="width:40%; background:#BCA57A" | Track 2: Green Auditorium | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; backgrouroond:#C2C2C2" align="left" | Registration and Coffee | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 09:00 - 09:10 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security ([http://video.google.com/videoplay?docid=-2481289516847680871&q=owasp video of all 3 talks]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 09:10 - 10:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace ([http://www.owasp.org/index.php/Image:AppSec2005DC-Joe_Jarzombek-DHS_SwA_Program_Overview.ppt ppt]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 10:00 - 11:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ron_Ross-FISMA.ppt ppt]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 11:00 - 11:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 11:20 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jack_Danahy-Business_Case_for_Application_Security.ppt ppt], [http://video.google.com/videoplay?docid=3853779542023264815&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Arian Evans - FishNet Security - The OWASP Tools Survey Project | ||
+ | ([http://www.owasp.org/index.php/Image:AppSec2005DC-Arian_Evans_Tools-Taxonomy.ppt ppt], [http://video.google.com/videoplay?docid=5758230888370998733&q=owasp video]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Alex Stamos - iSEC Partners - Web Services Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt ppt]) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Stamos-Attacking_Web_Services.ppt ppt]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-SAMATE_Project.ppt ppt]) | ||
− | == OWASP | + | Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch ([http://www.owasp.org/index.php/Image:AppSec2005DC-Mike_Kass-Tools_Taxonomy.ppt ppt]) |
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 15:20-16:40 || style="width:40%; background:#BC857A" align="left" | Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - Developing a Reference Dataset ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-Reference_Dataset.ppt ppt]) | ||
− | + | Rick Kuhn - NIST - Software Fault Interactions ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rick_Kuhn-Software_Fault_Interactions.ppt ppt], [http://video.google.com/videoplay?docid=-5233500471539001436&q=owasp video of both talks]) | |
− | | align="center" | ''' | + | |- |
+ | | style="width:10%; background:#7B8ABD" | 16:40-17:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 17:00 - 18:00 || style="width:40%; background:#BC857A" align="left" | Alex Smolen - Parasoft - Application Logic Defense ([http://video.google.com/videoplay?docid=4473926180612118549&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing ([http://www.owasp.org/index.php/Image:AppSec2005DC-Dan_Cuthbert-Evolution_of_App_Pen_Testing.ppt ppt], [http://video.google.com/videoplay?docid=4379894308228900017&q=owasp video]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 18:00 - 19:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Bus to Dinner Event at Holiday Inn | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 19:00 - 21:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Dinner Even (Optional) at Holiday Inn | ||
+ | |- | ||
+ | | colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 2 - October 12, 2005''' | ||
+ | |- | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Coffee | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 09:00 - 09:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote Day 2: Ira Winkler - Secrets of Superspies ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ira_Winkler-Secrets_of_Superspies.ppt ppt]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 09:50 - 10:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeremy_Poteet-In_the_Line_of_Fire.ppt ppt], [http://video.google.com/videoplay?docid=-9110574247136866679&q=owasp video of both talks]]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 10:50 - 11:10 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 11:10 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_AppSec_Guide_2.0.ppt ppt]) and OWASP Membership Plan ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_Membership.ppt ppt], [http://video.google.com/videoplay?docid=-5332911124544076749&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities ([http://www.owasp.org/index.php/Image:AppSec2005DC-Danny_Allan-Identity_Theft_Phishing_and_Pharming.ppt ppt]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project ([http://video.google.com/videoplay?docid=7947858567235952851&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Matt_Fisher-Google_Hacking_and_Worms.ppt ppt], [http://video.google.com/videoplay?docid=2018648061521175729&q=owasp video]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program ([http://www.owasp.org/index.php/Image:AppSec2005DC-Anthony_Canike-Enterprise_AppSec_Program.ppt ppt]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rogan_Dawes-WebScarab.ppt ppt], [http://video.google.com/videoplay?docid=8437304318271455155&q=owasp video]) | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 16:30 - 16:50 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break | ||
+ | |- | ||
+ | | style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | John Steven - Cigital - Building a Scalable Software Security Practice within your Organization ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video]) | ||
+ | | style="width:40%; background:#BCA57A" align="left" | Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Gunnar_Peterson-Identity-Services-in-WebApps.ppt ppt], [http://video.google.com/videoplay?docid=-1807054604513842127&q=owasp video]) | ||
|} | |} |
Latest revision as of 11:48, 20 September 2008
OWASP DC 2005 Conference Schedule
Day 1 - October 11, 2005 | ||
Track 1: Red Auditorium | Track 2: Green Auditorium | |
08:00 - 09:00 | Registration and Coffee | |
09:00 - 09:10 | Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security (video of all 3 talks) | |
09:10 - 10:00 | Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace (ppt) | |
10:00 - 11:00 | Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project (ppt) | |
11:00 - 11:20 | Break | |
11:20 - 12:30 | Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance (ppt, video) | Arian Evans - FishNet Security - The OWASP Tools Survey Project |
12:30 - 13:45 | Lunch | |
13:45 - 15:00 | Alex Stamos - iSEC Partners - Web Services Project (ppt) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps (ppt) | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project (ppt)
Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch (ppt) |
15:00 - 15:20 | Break | |
15:20-16:40 | Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR (video) | Paul Black - NIST - Developing a Reference Dataset (ppt)
Rick Kuhn - NIST - Software Fault Interactions (ppt, video of both talks) |
16:40-17:00 | Break | |
17:00 - 18:00 | Alex Smolen - Parasoft - Application Logic Defense (video) | Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing (ppt, video) |
18:00 - 19:00 | Bus to Dinner Event at Holiday Inn | |
19:00 - 21:00 | Dinner Even (Optional) at Holiday Inn | |
Day 2 - October 12, 2005 | ||
08:00 - 09:00 | Coffee | |
09:00 - 09:50 | Keynote Day 2: Ira Winkler - Secrets of Superspies (ppt) | |
09:50 - 10:50 | Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets (ppt, video of both talks]) | |
10:50 - 11:10 | Break | |
11:10 - 12:30 | Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 (ppt) and OWASP Membership Plan (ppt, video) | Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities (ppt) |
12:30 - 13:45 | Lunch | |
13:45 - 15:00 | Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project (video) | Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications (ppt, video) |
15:00 - 15:20 | Break | |
15:20 - 16:30 | Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program (ppt) | Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab (ppt, video) |
16:30 - 16:50 | Break | |
15:20 - 16:30 | John Steven - Cigital - Building a Scalable Software Security Practice within your Organization (video) | Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications (ppt, video) |